lib/oxidized/model/pfsense.rb


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24

class PfSense < Oxidized::Model
  # use other use than 'admin' user, 'admin' user cannot get ssh/exec. See issue #535

  cmd :all do |cfg|
    cfg.cut_head
  end

  cmd :secret do |cfg|
    cfg.gsub! /(\s+<bcrypt-hash>)[^<]+(<\/bcrypt-hash>)/, '\\1<secret hidden>\\2'
    cfg.gsub! /(\s+<password>)[^<]+(<\/password>)/, '\\1<secret hidden>\\2'
    cfg
  end

  cmd 'cat /cf/conf/config.xml' do |cfg|
    cfg.gsub! /\s<revision>\s*<time>\d*<\/time>\s*.*\s*.*\s*<\/revision>/, ''
    cfg.gsub! /\s<last_rule_upd_time>\d*<\/last_rule_upd_time>/, ''
    cfg
  end

  cfg :ssh do
    exec true
    pre_logout 'exit'
  end
end